CVE-2004-0445

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2004-0445
The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself.

2.6 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:N/I:N/A:P

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021359.html
http://secunia.com/advisories/11066
http://securityresponse.symantec.com/avcenter/security/Content/2004.05.12.html Patch Vendor Advisory
http://securitytracker.com/id?1010144
http://securitytracker.com/id?1010145
http://securitytracker.com/id?1010146
http://www.ciac.org/ciac/bulletins/o-141.shtml
http://www.kb.cert.org/vuls/id/682110 Patch Third Party Advisory US Government Resource
http://www.osvdb.org/6100
http://www.securityfocus.com/bid/10336
https://exchange.xforce.ibmcloud.com/vulnerabilities/16132
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:symantec:client_firewall:5.01:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_firewall:5.1.1:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.0:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.1:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.2:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.3:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.4:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.5:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.6:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.7:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.8:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:1.9:*:*:*:*:*:*:*
cpe:2.3:a:symantec:client_security:2.0:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_antispam:2004:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_internet_security:2002:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_internet_security:2002:*:pro:*:*:*:*:*
cpe:2.3:a:symantec:norton_internet_security:2003:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_internet_security:2003:*:pro:*:*:*:*:*
cpe:2.3:a:symantec:norton_internet_security:2004:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_internet_security:2004:*:pro:*:*:*:*:*
cpe:2.3:a:symantec:norton_personal_firewall:2002:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_personal_firewall:2003:*:*:*:*:*:*:*
cpe:2.3:a:symantec:norton_personal_firewall:2004:*:*:*:*:*:*:*
History

No history.

Information

Published : 2004-07-07 04:00

Updated : 2024-02-28 10:24

NVD link : CVE-2004-0445

Mitre link : CVE-2004-0445

CVE.ORG link : CVE-2004-0445

JSON object : View

Products Affected

symantec

  • norton_antispam
  • client_security
  • norton_personal_firewall
  • client_firewall
  • norton_internet_security
CWE
NVD-CWE-Other